$ rpki-client -vvf repo-rpki.idnic.net/repo/c5e31ecf-52a4-4677-9103-5f37a4091d75/0/3130332e3138342e31342e302f32332d3234203d3e20313439373135.roa File: 3130332e3138342e31342e302f32332d3234203d3e20313439373135.roa (raw, json) Hash identifier: na4K+gSIGLyDCKouQYUk/TqgjQ6mxHxLjw7lO31V0gw= Subject key identifier: 80:B9:0B:0D:F2:16:DB:35:58:B2:56:28:C2:C2:FD:A8:99:F4:F7:66 Certificate issuer: /CN=01DF4BADDE0B23C16F941DC3468443771C193624 Certificate serial: 73577C395A309389D75702D467FE457C99B7261E Authority key identifier: 01:DF:4B:AD:DE:0B:23:C1:6F:94:1D:C3:46:84:43:77:1C:19:36:24 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01DF4BADDE0B23C16F941DC3468443771C193624.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5e31ecf-52a4-4677-9103-5f37a4091d75/0/3130332e3138342e31342e302f32332d3234203d3e20313439373135.roa Signing time: Sun 24 Mar 2024 19:00:02 +0000 ROA not before: Sun 24 Mar 2024 18:55:02 +0000 ROA not after: Sun 23 Mar 2025 19:00:02 +0000 asID: 149715 IP address blocks: 103.184.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5e31ecf-52a4-4677-9103-5f37a4091d75/0/01DF4BADDE0B23C16F941DC3468443771C193624.crl rsync://repo-rpki.idnic.net/repo/c5e31ecf-52a4-4677-9103-5f37a4091d75/0/01DF4BADDE0B23C16F941DC3468443771C193624.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01DF4BADDE0B23C16F941DC3468443771C193624.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:57:7c:39:5a:30:93:89:d7:57:02:d4:67:fe:45:7c:99:b7:26:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01DF4BADDE0B23C16F941DC3468443771C193624 Validity Not Before: Mar 24 18:55:02 2024 GMT Not After : Mar 23 19:00:02 2025 GMT Subject: CN=80B90B0DF216DB3558B25628C2C2FDA899F4F766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:80:b1:67:78:ad:ae:70:7c:a7:be:2e:d9:66: d8:48:b6:5f:0e:af:fd:8a:00:95:17:f1:41:75:15: d0:ce:d5:48:19:3d:7d:48:9a:5c:e9:44:60:f6:d4: 88:88:72:c0:f7:4a:b2:69:5b:46:91:09:56:c7:c5: 4b:ff:48:fc:10:98:40:99:2e:e6:61:fc:dc:3c:b0: 98:5b:db:df:b8:cb:7c:f5:aa:86:32:56:ed:41:38: f8:cb:e8:17:56:09:9d:be:19:ac:e1:2d:43:cc:65: 18:e9:54:01:37:c3:f3:74:79:75:1c:56:3c:3c:83: 9a:73:14:b1:96:b9:42:ee:de:2c:98:78:4f:c6:d3: 65:d1:4a:42:5a:f0:56:23:ca:b3:88:de:83:b4:56: d5:dd:fb:b8:76:88:d0:91:f7:f2:0b:4b:c7:24:67: 90:4a:e6:c5:0c:18:33:01:ee:1c:92:c4:14:bf:4c: e0:c2:7e:48:ea:c1:ca:db:cf:c9:26:85:d8:ca:c6: 91:7c:d7:5f:65:a6:34:27:24:1f:df:74:65:1a:ed: 2f:db:d8:d4:8a:61:c8:8a:07:e1:d1:3a:1b:64:73: f1:7d:53:f1:e5:89:86:17:dc:65:43:9e:20:b9:7a: 7c:58:a8:dc:eb:b0:1a:f5:f3:44:97:7c:17:da:fe: c6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B9:0B:0D:F2:16:DB:35:58:B2:56:28:C2:C2:FD:A8:99:F4:F7:66 X509v3 Authority Key Identifier: keyid:01:DF:4B:AD:DE:0B:23:C1:6F:94:1D:C3:46:84:43:77:1C:19:36:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5e31ecf-52a4-4677-9103-5f37a4091d75/0/01DF4BADDE0B23C16F941DC3468443771C193624.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01DF4BADDE0B23C16F941DC3468443771C193624.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5e31ecf-52a4-4677-9103-5f37a4091d75/0/3130332e3138342e31342e302f32332d3234203d3e20313439373135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.14.0/23 Signature Algorithm: sha256WithRSAEncryption c5:0b:69:10:56:e6:f7:7a:3c:15:e2:52:ed:e9:b4:fa:f8:d0: 5c:ec:83:b6:2b:e5:cc:1c:1c:cf:8e:33:7a:c4:29:0b:ac:a7: 7b:65:06:f5:f0:48:86:81:61:97:6f:c3:13:8f:87:5d:85:a9: 31:9f:3c:d1:f5:ae:24:08:fa:72:1e:41:b4:5d:30:7b:d3:17: 7f:53:10:f5:77:b6:08:46:ce:41:88:68:0a:a1:3c:1c:0b:f8: bd:22:4d:49:20:02:20:6e:92:d9:09:63:cb:d4:88:a0:33:7c: 43:74:86:f6:7e:92:d6:0f:7d:f8:cb:f7:15:be:a2:03:6d:ca: 21:d2:34:3b:4d:81:fb:01:8b:c7:41:f1:b9:9a:c1:84:04:81: 5a:b5:1b:cf:0b:85:9a:68:73:3f:a7:f9:f7:24:43:f2:19:99: b3:ee:6a:95:fb:35:57:36:f6:39:69:8c:ea:c1:79:53:af:f2: fc:09:92:b0:c6:d3:b9:92:db:72:36:81:79:58:12:f0:76:3e: 66:7c:2b:ef:bb:22:42:d2:ab:38:ef:40:92:62:90:21:63:8b: 98:bc:54:6f:ad:d7:13:05:aa:01:60:d6:ae:f3:54:ae:fe:5d: 6c:26:9e:9e:a4:e7:2d:3b:17:48:b4:01:b9:b0:d1:09:d1:0e: f6:46:dc:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUc1d8OVowk4nXVwLUZ/5FfJm3Jh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFERjRCQURERTBCMjNDMTZGOTQxREMzNDY4NDQzNzcx QzE5MzYyNDAeFw0yNDAzMjQxODU1MDJaFw0yNTAzMjMxOTAwMDJaMDMxMTAvBgNV BAMTKDgwQjkwQjBERjIxNkRCMzU1OEIyNTYyOEMyQzJGREE4OTlGNEY3NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/gLFneK2ucHynvi7ZZthItl8O r/2KAJUX8UF1FdDO1UgZPX1ImlzpRGD21IiIcsD3SrJpW0aRCVbHxUv/SPwQmECZ LuZh/Nw8sJhb29+4y3z1qoYyVu1BOPjL6BdWCZ2+GazhLUPMZRjpVAE3w/N0eXUc Vjw8g5pzFLGWuULu3iyYeE/G02XRSkJa8FYjyrOI3oO0VtXd+7h2iNCR9/ILS8ck Z5BK5sUMGDMB7hySxBS/TODCfkjqwcrbz8kmhdjKxpF8119lpjQnJB/fdGUa7S/b 2NSKYciKB+HROhtkc/F9U/HliYYX3GVDniC5enxYqNzrsBr180SXfBfa/sYHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgLkLDfIW2zVYslYowsL9qJn092YwHwYDVR0j BBgwFoAUAd9Lrd4LI8FvlB3DRoRDdxwZNiQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWUzMWVjZi01MmE0LTQ2NzctOTEwMy01ZjM3YTQwOTFkNzUvMC8wMURGNEJBRERF MEIyM0MxNkY5NDFEQzM0Njg0NDM3NzFDMTkzNjI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDFERjRCQURERTBCMjNDMTZGOTQxREMzNDY4NDQzNzcxQzE5 MzYyNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZTMxZWNmLTUyYTQtNDY3Ny05 MTAzLTVmMzdhNDA5MWQ3NS8wLzMxMzAzMzJlMzEzODM0MmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7gOMA0GCSqG SIb3DQEBCwUAA4IBAQDFC2kQVub3ejwV4lLt6bT6+NBc7IO2K+XMHBzPjjN6xCkL rKd7ZQb18EiGgWGXb8MTj4ddhakxnzzR9a4kCPpyHkG0XTB70xd/UxD1d7YIRs5B iGgKoTwcC/i9Ik1JIAIgbpLZCWPL1IigM3xDdIb2fpLWD334y/cVvqIDbcoh0jQ7 TYH7AYvHQfG5msGEBIFatRvPC4WaaHM/p/n3JEPyGZmz7mqV+zVXNvY5aYzqwXlT r/L8CZKwxtO5kttyNoF5WBLwdj5mfCvvuyJC0qs470CSYpAhY4uYvFRvrdcTBaoB YNau81Su/l1sJp6epOctOxdItAG5sNEJ0Q72RtzG -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org